|
|
|
|
|
|
by schoen
2099 days ago
|
|
|
> by the way, i personally do believe NSA is doing this, and all of Tor is as good as plain text to Ft Meade, because Rabin's idea really would scale with today's computing and storage capacities, and because that is exactly what i would do too. I love to talk about how we can mitigate attacks on cryptography as much as the next person, but have you looked at what algorithms Tor uses? While they have a bunch of alarming legacy 1024-bit RSA and DH stuff, they also have Ed25519 identities and Curve25519 ECDH key exchange, plus running everything over TLS with various ciphersuites -- many of which are now ECDH. https://github.com/torproject/torspec/blob/master/tor-spec.t... The type of handshake and key exchange is chosen by the client, and I think the default has been to prefer the ntor method for a long time. |
|
|